Posted
by
timothy
on Friday March 22, 2013 @07:47PM
from the let's-track-ann-from-account-services dept.

itwbennett writes "Do you know what data the 1300+ tracking companies have on you? Privacy blogger Dan Tynan didn't until he had had enough of being stalked by grandpa-friendly Jitterbug phone ads. Tracking company BlueKai and its partners had compiled 471 separate pieces of data on him. Some surprisingly accurate, some not (hence the Jitterbug ad). But what's worse is that opting out of tracking is surprisingly hard. On the Network Advertising Initiative Opt Out Page you can ask the 98 member companies listed there to stop tracking you and on Evidon's Global Opt Out page you can give some 200 more the boot — but that's only about 300 companies out of 1300. And even if they all comply with your opt-out request, it doesn't mean that they'll stop collecting data on you, only that they'll stop serving you targeted ads."

It doesn't always work that way. Sometimes, these companies use their own sites, but other times, it's a no-name domain and sometimes a random IP. It's almost a kin to a botnet herder where they all report to a root domain where they get their instructions.

And other times these are from publicly available records; no direct connection to your web browser. If you buy a car, apply for a credit card or even register a new phone number, expect to get spammed shortly. The only way to not get included in a dossier of some sort is to not exist. But even that's no guarantee.

Which is why I use RequestPolicy. It blocks all third-party browser requests by default. It's a mild PITA because practically every site seems to use a separate domain for static content nowadays, and you need to configure this in RequestPolicy, but once you've done that it's effortless.

Of course, there's not much I can do about my credit history, but I'm fairly confident these companies know jack-shit about my browsing habits.

THe Ghostery plug in accomplishes the same thing... It automatically blocks trackers against a big black list. Something cool, it does a subtle pop up wheyou visit a page listing all the trackers on that page. Eye opening, for sure! Some pages,a dozen different trackers! I know Ghostery is available for safari, not sure about other browsers.

Yeah, if you read the article, you'd see Ghostery is run by and advertising company." About EvidonEvidon reveals the invisible web.

Its technology gives brands, publishers, networks and other businesses around the world unique insight into the digital ecosystem—including unparalleled intelligence on the marketing technologies that underpin the commercial web —and the power to control their impact on business.

Evidon's technology includes Ghostery®, the industry-leading browser tool that repor

I tend to use noscript default to allow, requestpolicy and ghostery, privacy is one issue, but another issue is security, how do any of these sites know what sort of security holes the code they're linking to has? What's more, it's completely transparent to the end user unless they're blocking all that crap.

If you use a different browser or delete your cookies, your back in. Best just use a HOSTS file and say screw itto sites that ask you to receive ads. I am starting to see thank you for not using Adware banners but blocking most of the ads.

I was very disappointed I was able to log into evidon.com or adroll.com.Can't find APK just yet but just might use a 1+ meg HOSTS file and do it backwards;remove the sites I wish to visit as the HOSTS file blocks them.

It's not the truth or value (or lack of) in your post that gets it modded into oblivion, it's the fucking insane length. In addition to TL;DR (which goes without saying for a post of such length), how about irritating readers by requiring them to scroll through 20+ screenfuls just to get to the next post.

If you want to publish a short story like this, please do everyone a favor and blog it somewhere, then provide a brief summary and link to your blog. Readers intrigued by your summary will

Because that kind of passive measures are not very effective.Also, the enemy has so much money which they are paying to some top programmers in the world, that they are just immensely more powerful technically.What we need is a new kind of company who will work for the people's protection. I for one would gladly pay a subscription fee to have that information poisoned. The real problem is not that there is no protection; the real problem is that noone cares. Most people want to be tracked. If they didn'

I do something even better than using Tor for browsing internet: I use a stolen MacBook, and I make sure to get a new one every week. On the plus side I get to listen to different music all the time, without this approach I would have never guessed Justin Bieber has so many different songs.

I disable cookies and ONLY allow the sites I want. I use Firefox and ABP (Ad Block Plus). They can have my IP but that's all they will get. I hate the advertising companies as on some sites, especially when downloading, they swamp the whole page with "Download" buttons which look like the download buttons from the actual website they are advertising on. Total nightmare!

I use ghostery and love it and all. But I wonder if passive resistance is the wrong way to go about this. Maybe what we need is to allow all those tracking cookies. But run a program on your computer which replaces the data in those cookies every 5-10 seconds. That is, instead of denying the marketers data (meaning the data they do get is still good), pollute their data so this whole business of tracking is less effective.

That's a great idea, but how can you ensure that the fake data still
"looks right"? If it's completely random, it's going to be relatively
easy to filter out. It needs to be consistent so that the cookie data
is well formed according to the tracking company's system, I guess.

One possibility might be to set up a server that 1) receives tracking
cookies from people, and 2) returns a random tracking cookie from its
collection whenever asked by anyone. Think of it like a cookie swap exchange, where your brows

And even if they all comply with your opt-out request, it doesn't mean that they'll stop collecting data on you, only that they'll stop serving you targeted ads."

That line is the most important part of the story. The phrase "opt out" has been redefined by the marketers. You can not opt out of being tracked, you can only opt out of being reminded that you are being tracked. That is more than useless because it defuses the people most likely to be unhappy about these trackers with a false sense of safety.

Your only way to avoid being tracked is not to ever talk to the trackers in the first place. For the less technically inclined, the Ghostery plugin for firefox is pretty much set it and forget it. If you can handle looking underneath the hood of the internet, check out Request Policy [requestpolicy.com] which gives you extremely fine grained control over what stuff a webpage can pull in from other webservers. I default block all cross-site includes from other domains and white-list them on an individual basis and it really isn't too inconvenient. Besides the privacy benefits, it makes web pages load super fast when they don't have to pull in crap from 15 other servers.

Set Firefox to reject 3rd party cookies and remove all cookies on session end

Disable all Plugins except Flash and your favorite media player's plugin; gecko-mediaplayer for example.The point is them not even appearing in navigator.plugins. (If you're on Windows(/Mac?), you'll have to repeat this check after every Skype/Office/.NET/Adobe Reader/whatever update. My condolences).

Install Ghostery, RefControl, "Click to Play switch", Scriptish - all from addo

I use some domain blocking entries, plus a hosts file from http://pgl.yoyo.org/as/serverlist.php?showintro=0;hostformat=hosts [yoyo.org] on my router, with local DNS enabled. It redirects about 2500 URLs to 127.0.0.1. DD-WRT for the win! I would imagine other third-party firmware allows this, too. When I have company, they sometimes comment how much better the web pages look and how fast they load on their laptops when they use my AP. They also wonder why Facebook and Twitter don't work...:-)

I had a few users at work that were spending too much time on facebook, etc. and management asked me to block it except during breaks. So I fire up an old box and put squid on it and tell AD to force them to proxy through it.

I then did a tail -f on the/var/log/squid3/access.log file and howdy boy do some sites have a lot of crap called when you load a page. Even our small town local newspaper site would call up about 30 different domains on each page load. Some of them would put a java script in to refresh each minute to see how long one stayed on the page.

Now I see why I run no-script and ABP on my boxes.

I started blocking a lot of them but real work called and I'm guessing that I only got about a third of them.

The unfortunate thing is almost all the stuff on the web these days has a no-cache flag so running a proxy for web-cache/bandwidth reduction is almost useless. I only get about 2% cache hits.

I know better than to wish javascript were never invented, but when I have to deal with sites that don't work with javascript because they shit on themselves and sites that don't work without javascript because the web developers are incompetent in the space of about five seconds, I want to imminentize the eschaton.

It's not like we didn't notice yet that all sending an "opt-out" EMail accomplishes is to increase the value of your mail address because now it is confirmed to be one you actually use.

The only way to stop trackers is to mislead them with false information and block as many tracking as you possibly can. Relying on those that benefit from tracking to comply with your requests is naive at best.

Nothing more annoying than searching for a product, BUYING said product, and then for weeks/months later being shown ads for said product that I no longer have an interest in... BECAUSE I'VE ALREADY GOT ONE, YOU SEE?!?!"/French accent

If you want to see Ghostery at work, try that link to the first opt-out site http://www.networkadvertising.org/choices/ [networkadvertising.org] with Ghostery running - the list of blocks scrolled right off the bottom of my page.

I don't see what is actually the problem. Isn't that better to have somehow targeted ads?

As for breaching my privacy: I'm just a record in billions of records for those companies. I'm pretty sure they don't give a shit about me as an individual, they care about categories and segments and groups. So what if they know which website I look at and how frequently. We are not talking about companies using my facebook pictures or my wishlist on Amazon, it's just ads.

Showing ads is fine when I am actually looking for something; no need to stalk me all the time. If I'm not looking for something I am not going to buy anything either. Oh and make it text ads only because I block everything else and I can't click on blocked ads, can I? Thanks!

Is this a letter for Santa Claus?

It's wonderful that you agree to see ads when you are looking for something; this is how Google makes money. But who pays for all the other websites that you visit for free? They are hosted somewhere on a server that has been purchased by someone, that has its power and cooling paid by someone, and is online because someone is paying the ISP. If you don't want paywalls everywhere, then so far the ads are the only viable solution to help those people pay for this infrastructure.

Or maybe you are one of those people who think that because you pay $35 a month for your internet access you should get all content for free. That reminds me of a girl I knew in college who was making and selling pirate copies of movies but according to her it was legal because she was paying for the blank DVDs and for her internet connection.

There is a serious flaw in the internet business model, everyone knows it. Ads are awful and even targeted ads have a very low conversion rate. Yet for most people there is so far no other way to make money. So why don't you stop whining like an entitled brat and instead start thinking about realistic solutions to this problem? If you find a good one you could make millions.

On the Network Advertising Initiative Opt Out Page you can ask the 98 member companies listed there to stop tracking you and on Evidon's Global Opt Out page you can give some 200 more the boot

No, no you can't. I just tried the Network Advertising Initiative opt out page. It doesn't work. Out of 96 sites, 0 worked. I also tried Evidon. Looks like about only 80% of them can be shut off from that page. And now I have a horrible suspicion that all I've done is confirmed my existence to spammers.

You do all that work of opting out and with a single click of the delete cookies button all your work and 200 different cookies just hit the shit fan. Google had a program that was installed to block tracking but i forgot what it was for. But opting out with a cookie is useless. It needs to reside somewhere other then the internet folder.